× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. September 2001

RE: Importing renewed SSL certificate

This is a multipart message in MIME format.
--
[ Picked text/plain from multipart/alternative ]
I've created a \\home\verisign directory, copied the cert.cer into it.
Using the browser, I start the Digital Certificate Manager, click System
Certificates, enter my password for the *SYSTEM store when prompted, click
Receive a system certificate, enter the path as /home/verisign/cert.cer.
The next screen says that the 'Certificate store password is not valid.'

I then restart my browser session, click on Digital Certificate Manager,
click System Certificates, enter my password for the *SYSTEM store, click
Change password, enter the New password and the confirmation - I enter the
same password as I used when prompted after System Certificates - the next
screen tells me that the 'New password is identical to the old password.'

I've repeated this several times, with the same results.  Why is my
password not valid when I'm attempting to receive the certificate?  I'm
certain that I've entered it correctly, so it must be invalid for some
other reason - but what other reason?  The job log doesn't give a clue,
nor does the history log.

Tom Hightower
Solutions, Inc
http://www.simas.com
------------
If Bill Gates had a dime for every time a Windows box crashed... oh, wait
- he does.





"Haase, Justin C." <Justin.Haase@Kingland.com>
Sent by: midrange-l-admin@midrange.com
09/21/01 04:41 PM
Please respond to midrange-l


        To:     "'midrange-l@midrange.com'" <midrange-l@midrange.com>
        cc:
        Subject:        RE: Importing renewed SSL certificate


Two things:

1.  The cert needs to be on the IFS of the AS/400.  Try \\home\verisign\ -
works well - easy to remember.  Then for the path, just type
/home/verisign/certificate.cer and click OK.  Then re-assign your secure
app
on the "work with secure applications" tab.

2.  I've found the best way (and the only way I can get to work) is to
REVOKE the cert which VeriSign sent you on auto-renew, and generate a new
CSR request from the 400 to get a new cert.  This also creates a different
key pair which adds a bit of security.  The revoke/replace is free for 30
days after VSign sends you the cert.

Hope this helps.

Justin C. Haase
Midrange Systems Engineer - Kingland Systems Corporation
1401 - 6th Avenue South - Clear Lake, IA 50428 USA
IBM Certified AS/400 Systems Administrator
Microsoft Certified Professional
phone - 641.355.1035
e-mail - justin.haase@kingland.com
www.kingland.com


-----Original Message-----
From: tomh@simas.com [mailto:tomh@simas.com]
Sent: Friday, September 21, 2001 4:11 PM
To: midrange-l@midrange.com
Subject: Importing renewed SSL certificate


This is a multipart message in MIME format.
--
[ Picked text/plain from multipart/alternative ]
I've gotten our renewed SSL certificate for internet use, and am trying to
figure out how to import (?) it into the system (we're at v4r5m0, btw).
I've started up the *admin instance and get to the Digital Certificate
Manager thru the browser.  I click on System Certificates, and I'm
prompted for my Certificate store (*SYSTEM) and password.

I then go to Change Password, and enter the same password that I logged in
with (just to verify that I've entered it correctly).  I get a screen
saying that the new password is identical to the old password, so I know
that it's right.

I then click on Receive a CA Certificate. I fill in the CA certificate
label (idocket.com) and the CA certificate file name
(d:\downloads\idocket.cer). The following screen tells me that the
Certificate store password is not valid.

Q1: why is it saying the password is wrong?
Q2: am I doing this right?

Tom Hightower
Solutions, Inc
http://www.simas.com
------------
If Bill Gates had a dime for every time a Windows box crashed... oh, wait
- he does.
_______________________________________________
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
list
To post a message email: MIDRANGE-L@midrange.com
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/cgi-bin/listinfo/midrange-l
or email: MIDRANGE-L-request@midrange.com
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.
_______________________________________________
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
list
To post a message email: MIDRANGE-L@midrange.com
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/cgi-bin/listinfo/midrange-l
or email: MIDRANGE-L-request@midrange.com
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.